资讯

Software packages with more than 2 billion weekly downloads hit in supply-chain attack

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...
Arabian Post on MSN19 小时

Cyber-Attack Campaign GhostAction Targets GitHub Workflows

This breach exposed a critical weakness in the current CI/CD security model: the assumption that automated workflows are inherently benign. The GhostAction supply chain campaign underscores how ...
The Punch on MSN5 小时

Citigroup’s Anyah drives cloud reliability, compliance

Citigroup Vice President of Cloud Security Site Reliability Engineering, Vincent Anyah, is enhancing cloud reliability and ...
Securities.io10 小时

Crypto Hackers Exploit Vulnerable Smart Contracts as AI Security Platforms Emerge to Fight Back

This highlights an uncomfortable truth: many of the most damaging crypto exploits are preventable. The problem isn’t just the increasing sophistication of hackers, but that security is often treated ...
The Hacker News19 小时

⚡ Weekly Recap: Drift Breach Chaos, Zero-Days Active, Patch Warnings, Smarter Threats & More

This week, one story stands out above the rest: the Salesloft–Drift breach, where attackers stole OAuth tokens and accessed ...

Cognition follows Windsurf acquisition with $400M fundraise, showing strong backing for ...

Less than two months after it acquired rival AI coding platform Windsurf, the San Francisco.startup Cognition today announced ...
TechAnnouncer4 小时

Mastering Cloud Automation Tools: Your Essential Guide for 2025

Foundational Pillars Of Cloud Automation Before we get into the fancy tools and multi-cloud setups, let’s talk ...